$ rpki-client -vvf rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa File: CE7287309A9811EBAC99AD22C4F9AE02.roa (raw, json) Hash identifier: VNVV+MtZbRQoHTpqnT0qQ5QpoY/GhvN/UD4lPsIWN/0= Subject key identifier: 6C:41:51:8D:79:3D:05:F8:24:7F:DF:3A:47:1B:01:86:F3:00:24:7F Certificate issuer: /CN=A913E7CA/serialNumber=FFB503F202320CD86973AFE61A16FBB5C6F28D64 Certificate serial: 0614 Authority key identifier: FF:B5:03:F2:02:32:0C:D8:69:73:AF:E6:1A:16:FB:B5:C6:F2:8D:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa Signing time: Fri 28 Mar 2025 23:24:03 +0000 ROA not before: Fri 28 Mar 2025 23:24:03 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141773 IP address blocks: 103.163.210.0/23 maxlen: 23 103.163.210.0/24 maxlen: 24 103.163.211.0/24 maxlen: 24 2001:df6:2780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.crl rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1556 (0x614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E7CA, serialNumber=FFB503F202320CD86973AFE61A16FBB5C6F28D64 Validity Not Before: Mar 28 23:24:03 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e72f93-4731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a3:0c:24:92:9a:18:2d:3e:09:3c:4a:11:48: b6:78:a1:42:49:78:ac:c1:00:ec:c4:30:7f:c7:73: 52:d0:a5:2d:e0:9b:b4:5c:b4:02:5f:8c:55:b0:82: a8:c4:06:13:9d:c7:9c:9b:5a:09:42:b3:06:54:0e: 40:14:14:43:df:f5:c3:20:e3:64:0b:5f:90:67:6f: d6:dd:02:fe:37:3e:fa:ad:5a:36:59:09:ed:fa:5b: 0f:09:58:06:fe:c5:81:7b:67:15:2c:78:c5:22:66: 95:9d:7b:a6:58:55:6d:1a:76:fd:08:5a:70:a5:45: 83:59:20:60:a1:1a:81:59:bd:9a:40:1e:b4:11:95: 6b:14:57:a7:70:87:78:d6:aa:3d:cd:50:50:04:78: b5:7d:63:f4:78:b0:c0:46:63:60:dd:00:79:67:15: fa:be:b6:c8:7f:fb:f1:14:79:ad:96:b1:17:08:12: 6e:2e:6c:ef:4d:7d:99:06:f8:77:d3:df:07:2c:c8: 5d:cb:6a:b5:6b:a4:f2:3b:49:7b:91:0e:a1:c6:d7: c3:d6:6f:5e:8b:00:a5:42:75:7a:99:b0:00:aa:8a: f3:55:2d:0e:cc:15:d9:0e:1b:b1:1e:c5:e1:e8:47: 30:83:60:d0:0b:c0:c6:b6:ac:67:eb:e4:f6:4c:aa: bb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:41:51:8D:79:3D:05:F8:24:7F:DF:3A:47:1B:01:86:F3:00:24:7F X509v3 Authority Key Identifier: keyid:FF:B5:03:F2:02:32:0C:D8:69:73:AF:E6:1A:16:FB:B5:C6:F2:8D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.210.0/23 IPv6: 2001:df6:2780::/48 Signature Algorithm: sha256WithRSAEncryption 97:2f:a5:de:a2:4e:f3:19:36:46:44:b8:74:ca:5d:63:45:85: df:4f:03:e4:49:60:2d:3b:de:34:6d:99:0c:a5:c5:a1:c4:9f: f4:a2:35:be:ff:b0:44:a8:74:72:a2:de:7d:13:52:13:b8:47: 7a:43:74:59:4d:d8:04:a0:82:14:9f:bd:3c:78:a5:8c:12:cf: 5f:df:5b:ca:9e:cd:cd:8e:74:74:a6:cb:38:db:71:ae:cc:5d: cb:09:a5:a4:ab:77:68:82:7d:07:e2:ef:a5:4c:86:72:f5:83: 52:dc:dd:d1:64:0a:9c:6b:4f:a3:82:a4:4d:02:2b:fa:19:fd: 94:72:ce:4c:35:46:eb:ce:00:2c:1a:a3:57:19:bf:b9:1d:c0: fa:6f:94:55:34:94:b7:1f:d3:8a:c9:14:d0:f9:ab:9c:6c:19: 9e:e5:8d:14:9b:80:62:19:1e:94:83:29:c9:e4:ed:6b:7e:d7: 3b:26:6d:6a:de:73:c0:06:7b:a7:70:a3:ff:9e:7c:9d:5a:ba: 56:05:2a:22:ac:6f:82:0a:ad:68:6c:59:c0:41:09:b6:18:3d: d7:1d:70:e0:f9:d0:39:e0:bd:30:fd:1b:a1:b8:4f:69:1e:b1: 8d:8e:df:57:11:b2:b6:03:4e:0f:41:a2:43:35:fb:9f:c5:7b: 8a:d0:e3:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U3Q0ExMTAvBgNVBAUTKEZGQjUwM0YyMDIzMjBDRDg2OTczQUZFNjFBMTZGQkI1 QzZGMjhENjQwHhcNMjUwMzI4MjMyNDAzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3MmY5My00NzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraMMJJKaGC0+CTxKEUi2eKFCSXiswQDsxDB/x3NS0KUt4Ju0XLQCX4xVsIKo xAYTncecm1oJQrMGVA5AFBRD3/XDIONkC1+QZ2/W3QL+Nz76rVo2WQnt+lsPCVgG /sWBe2cVLHjFImaVnXumWFVtGnb9CFpwpUWDWSBgoRqBWb2aQB60EZVrFFencId4 1qo9zVBQBHi1fWP0eLDARmNg3QB5ZxX6vrbIf/vxFHmtlrEXCBJuLmzvTX2ZBvh3 098HLMhdy2q1a6TyO0l7kQ6hxtfD1m9eiwClQnV6mbAAqorzVS0OzBXZDhuxHsXh 6Ecwg2DQC8DGtqxn6+T2TKq7mQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGxBUY15 PQX4JH/fOkcbAYbzACR/MB8GA1UdIwQYMBaAFP+1A/ICMgzYaXOv5hoW+7XG8o1k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTdDQS8wMDNERTA2MDlB OTAxMUVCODk3OTcwNDlDNEY5QUUwMi9fN1VEOGdJeUROaHBjNl9tR2hiN3RjYnlq V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183VUQ4Z0l5RE5ocGM2X21HaGI3dGNieWpXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U3Q0EvMDAzREUwNjA5QTkwMTFFQjg5Nzk3MDQ5QzRGOUFFMDIvQ0U3Mjg3MzA5 QTk4MTFFQkFDOTlBRDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno9IwDwQCAAIwCQMHACABDfYngDANBgkqhkiG9w0BAQsF AAOCAQEAly+l3qJO8xk2RkS4dMpdY0WF308D5ElgLTveNG2ZDKXFocSf9KI1vv+w RKh0cqLefRNSE7hHekN0WU3YBKCCFJ+9PHiljBLPX99byp7NzY50dKbLONtxrsxd ywmlpKt3aIJ9B+LvpUyGcvWDUtzd0WQKnGtPo4KkTQIr+hn9lHLOTDVG684ALBqj Vxm/uR3A+m+UVTSUtx/TiskU0PmrnGwZnuWNFJuAYhkelIMpyeTta37XOyZtat5z wAZ7p3Cj/558nVq6VgUqIqxvggqtaGxZwEEJthg91x1w4PnQOeC9MP0bobhPaR6x jY7fVxGytgNOD0GiQzX7n8V7itDjHA== -----END CERTIFICATE-----Generated at Mon May 5 02:07:30 2025 by rpki-client